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Ameiidmeiits ro the O^iiiis: 

This listiog of cSaims will replace all prior versionB, and listings, of claims in the 
application: 

Ostm^ of Claims : 

1 , (Currently Anieiided) A validation protocol for detemiining authenticity of a printer 
consumable, said protocoi inciuding the steps of: 

providing a printer containing a trusted authentication chip and a printer consuniabSe 
containing an unlrasted authentication chip; 

generatinfi a secret random number and calculating a signature for the random 
number using a signature function, in the trusted chip, the tasted chip having a random 
function to produce random nymbers from a seed, and the fimction advances after each 
successful validation, so that the next random number is produced from a new seed; 

encrypting the random number and the signature by a symmelric encryplion ftinction 
using a first key, in the trusted chip; 

passing the encrypted ratidom number and signature from the trusted chip to the 
unlTusted chip, 

deci7pting the encrypted random number and signature with a symmetric decr^'ption 
function using the first key, in the untmsted chip; 

caicuiating a signature for the decrv-pted random number using the signature 
fonction, in the untrusted chip; 

comparing the signature calculated in the untrusted chip with the signature 
decrypted, in the untrusted chip; 

in the event that the two signatures match, in the untrusted chip, encrypling the 
decrypted random number by the symmetric encrj ption tunction using a second Icey and 
returning the enciypted random number to the trusted chip; 

calling a test function in the trusted chip, the test function being called by the trusted 
chip first receiving, a £kH^ j^id jandoni number of times, a first number, then receiving the 
encry^pted random number from the untrusted chip, the test function including: 
encrypting the random nuniber by the synimetric encryption ftm 

the second key, in the trusted chip,iai>rodMceA.s^^ 

coni paring., j||>iosam,|>|u the HA^ntem 

m$*H%^-^^^^l^t^-H^M>g4fee-second k^-uumbcr with the ^^pee^ve-first numben-a$- 

^H6r¥p^^"J^^>deH> BBmi^ in the trusted chip, the first 



AimSx. Dtited: <>ctober :^0, 2007 

Respa[i?>,2: to Office As;tiofj ttf 8epiv?fM:E>er 13, 2007 



3 



imraber being seleeted stuch that the comparison ihoul^^evef m^f^^^^^muioi ^ match 



Miia^ll£k,i^QnJiEao encrypted random immber from 

the uo trusted chip4>ek>^t>?^Ml^H?-^^Me4>y-^^^^^ 
m^:5fm-€klw-a-m*ilfd>-<>?--^^-^Hf^^H^ in the tnjsted chip; 




in the eveiit thai the comparison with the encrypted random number from the 
□Jitrusted chip retoms a match, considering the ontrosted chip to be valid and 
aiithorizing use of the printer consumable; and 

in the event that the comparison with the encrypted random number from the 
untrusted chip returns a mistnatch, considering the entrusted chip to be invalid and 
denying use of the printer consumable, 

2. (Original) T he protocol according to claim 1, where the first and second keys are 
held in both the trusted and untrusted authentication chips, and are kept secret. 

3. (Cancelkd) 

4. (Original) The proloco! according to claim 1, where the symmetric decrypt fbnction 
is held only in the untrusled chip. 

5. (Original) The protocol according to claim 1, whei^ the sigiiature fimction generates 
digital signatures of 160 bits. 

6. (Cancelled) 





7, (Original) The protocoi according to claim 6, where the time taken to reti^rn an 
indication the chip is invalid is the same for aJl bad inputs, and the tifne taken to retom the 
random number encrypted with the second key is die same for atl good inpiits. 
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8. (Origiiial) The protocoi accofding to claim 1 , where a test fltnctioo is held oo!y in 
the taisted chip to advfmce the random number if the untmsted chip is valid; otherwise it 
returns an indication the chip is invalid. 

9. (Orjginai) The pratocol according to claim 8, wher^ the time taken to return an 
indication the chip is invalid is the same for all bad inputs, and the time taken to return an 
indication the chip is valid is the same for al! good inputs. 

10. (Original) The protocoi according to chaim 1, where it is used to determine the 
physical presence of a valid authentication chip. 

1 1 . (Previously Presented) A validation system for performing the method according to 
ciaim 1 , where the system includes a printer containing a trus^led authentication chip a.nd a 
priiiter consuniable containing mi untrusted authentication chip; where the trusted 
authentication chip inciudes a random number generator, a symmetric encryption ftmctiori 
and two keys for the flmction, a signature function and a test function; and the imtaisted 
authentication chip incSudes a symmetric encry ption and decryption function and twx> keys 
for these functions, a signature function, and a prove function to dect^^pt a random number 
and signature encry'pted using the first key by the taisted authentication chip, and to 
cakuiate another signatore from the decrypted random number, for comparison with the 
decrypled signature, and in the event that the comparison is successful to encrypt the 
random number with the second key and send the encrypted random number back; the test 
fimction in the trusted chip then operates to generate an encrypted version of the random 
number using the second key and to compare the encr> pted fandoni number with the 
received version to validate the untmsted chip, where the trusted authentication chip 
contains a random flmction to produce random numbers from a seed, and the function 
advances at^er each successful validation, so that the next random number will be produced 
from a new seed. 

12. (Original) A validation system according to claim 1 1 , where the remainder of the 
system is software, hardware or a combination of both, but die trusted chip is a physical 
authentication chip. 
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13. (Origiiial) A validation system according to claim 1 1, where both chips have the 
same iriternal structure. 

14, (Original) A validation system according to claim 1 1, where the first and secortd 
key s are kept secret 

15 (Canceiied) 

16. (Original) A validation system according to claim 1 1, where the signature fonction 
generates digital signatures of 1 60 bits. 

17. (Original) A validation system according to claim 1 1, where the prove fimction 
retorns an indication the chip is invalid for aO bad inputs and the time taken to do this is the 
same for aO bad inputs, a^id the time taken to return the random iiumber encrypted with the 
second key is the same for al! good inputs. 

1 8. (Original) A validation system according to claim 1 1 , w here the test function 
advances the random number if the untrusted chip is vaHdated. 

19. (Original) A validation system according to claim 1 1, where the time taken for the 
tesl flniction to reluni an indication the chip not validated is the same for ail bad inputs, and 
the tiTne taken to return an indication that the chip is vaiidated is the same for all good 
inputs 

20. (Original) A validation system according to claim 1 1 , where it is used to determine 
the physical presence of a valid authentication chip. 



